Bhavin Vaidya via FreeIPA-users wrote:
Hello,
I'm having various problem on our FreeIPA setup, like can not establish
new replica server or add a client anymore. Initially we had certificate
issue, then we upgraded the Master FreeIPA server (CentOS 7.0.146) to
FreeIPA v4.4.0) few months back.
Hi,
Please can anyone help me to integrate TACPLUS with FREEIPA for
authentication and authorisation.
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Hey,
This week I tried to install Samba (which failed because of Ubuntu, but that's
another story).
One of the steps was to do ipa-adtrust-install. It created a cifs/myhost
pricipal
on my IPA master server.
But now it keeps switching my default pricipal to cifs/myhost@MYREALM (and
in this case
On Thu, Oct 12, 2017 at 11:47:26AM +0200, Kees Bakker via FreeIPA-users wrote:
> Hey,
>
> This week I tried to install Samba (which failed because of Ubuntu, but that's
> another story).
>
> One of the steps was to do ipa-adtrust-install. It created a cifs/myhost
> pricipal
> on my IPA master se
On to, 12 loka 2017, Kees Bakker via FreeIPA-users wrote:
Hey,
This week I tried to install Samba (which failed because of Ubuntu, but that's
another story).
One of the steps was to do ipa-adtrust-install. It created a cifs/myhost
pricipal
on my IPA master server.
But now it keeps switching m
On 12-10-17 12:05, Sumit Bose via FreeIPA-users wrote:
> On Thu, Oct 12, 2017 at 11:47:26AM +0200, Kees Bakker via FreeIPA-users wrote:
>> Hey,
>>
>> This week I tried to install Samba (which failed because of Ubuntu, but
>> that's
>> another story).
>>
>> One of the steps was to do ipa-adtrust-in
On 12-10-17 14:11, Alexander Bokovoy wrote:
> On to, 12 loka 2017, Kees Bakker via FreeIPA-users wrote: >> Hey, >> >> This
> week I tried to install Samba (which failed because of Ubuntu, but that's >>
> another story). >> >> One of the steps was to do ipa-adtrust-install. It
> created a cifs/my
On to, 12 loka 2017, Kees Bakker wrote:
On 12-10-17 14:11, Alexander Bokovoy wrote:
On to, 12 loka 2017, Kees Bakker via FreeIPA-users wrote: >> Hey, >> >> This week I tried to install Samba (which failed
because of Ubuntu, but that's >> another story). >> >> One of the steps was to do ipa-adtr
On 12-10-17 14:49, Alexander Bokovoy wrote:
> On to, 12 loka 2017, Kees Bakker wrote:
>> On 12-10-17 14:11, Alexander Bokovoy wrote:
>>> On to, 12 loka 2017, Kees Bakker via FreeIPA-users wrote: >> Hey, >> >>
>>> This week I tried to install Samba (which failed because of Ubuntu, but
>>> that's >
On 10/12/2017 03:29 AM, Rob Crittenden via FreeIPA-users wrote:
Bhavin Vaidya via FreeIPA-users wrote:
Hello,
I'm having various problem on our FreeIPA setup, like can not establish
new replica server or add a client anymore. Initially we had certificate
issue, then we upgraded the Master Free
I appreciate all the ideas on how to fix the SSL cert issue on updating
to 4.5.0, I'll work on that next week I hope.
This one should be much quicker (hopefully). My boss has insisted that
I get ipa-clients working on a half-dozen or so servers located in
Alaska. (Believe me, I argued strenu
When trying to reset a password for a user and I pull up the page for a
specific user, it shows them as being disabled even if they aren't. This
causes the reset password option to be grayed-out among other things. I
verified the users weren't actually disabled by running ipa user-show
on a few
I noticed the same thing weeks ago and I am using the same workaround that
Kristian. Might it be a bug on webui?
—
Givaldo Lins
> On Oct 12, 2017, at 9:05 AM, Kristian Petersen via FreeIPA-users
> wrote:
>
> When trying to reset a password for a user and I pull up the page for a
> specific u
Very possibly a bug if others are experiencing this as well. I am running
IPA v4.5.0 on RHEL 7.4 are you running in a similar environment?
On Thu, Oct 12, 2017 at 10:25 AM, Givaldo Lins
wrote:
> I noticed the same thing weeks ago and I am using the same workaround that
> Kristian. Might it be a
Mark Haney via FreeIPA-users wrote:
I appreciate all the ideas on how to fix the SSL cert issue on updating
to 4.5.0, I'll work on that next week I hope.
This one should be much quicker (hopefully). My boss has insisted that
I get ipa-clients working on a half-dozen or so servers located in
Ala
Kristian Petersen via FreeIPA-users wrote:
Very possibly a bug if others are experiencing this as well. I am
running IPA v4.5.0 on RHEL 7.4 are you running in a similar environment?
You might be able to figure out what is going on using something like
the Firefox dev console. In it you could
On 10/12/2017 01:32 PM, Rob Crittenden wrote:
Mark Haney via FreeIPA-users wrote:
That's a tough one. ipa-client-install makes many (a dozen?)
connections while it does its thing.
You might try pre-generate the host entry and keytab, ship it to the
machine, then use the --keytab option. i
Mark Haney wrote:
On 10/12/2017 01:32 PM, Rob Crittenden wrote:
Mark Haney via FreeIPA-users wrote:
That's a tough one. ipa-client-install makes many (a dozen?)
connections while it does its thing.
You might try pre-generate the host entry and keytab, ship it to the
machine, then use the --
On 10/12/2017 02:06 PM, Rob Crittenden wrote:
Mark Haney wrote:
Maybe some holy water wouldn't be a bad idea.
On the bright side if anyone were ever to log into the machines then
the sssd cache would likely make it far easier on subsequent attempts.
rob
True. Forunately, we rarely
Ipa-server 4.4.0-14 in RHEL 7.3
—
Givaldo Lins
> On Oct 12, 2017, at 9:53 AM, Kristian Petersen wrote:
>
> Very possibly a bug if others are experiencing this as well. I am running
> IPA v4.5.0 on RHEL 7.4 are you running in a similar environment?
>
>> On Thu, Oct 12, 2017 at 10:25 AM, Giv
Thank you Ron and Jon.
Jon, yes they are unique, I just replaced first word on each line.
I will have to find out how to find these certificates in LDAP and keep all but
latest as Rob suggested.
Regards,
Bhavin
From: John Dennis
Sent: Thursday, October 1
On 10/12/2017 05:06 PM, Bhavin Vaidya wrote:
Hello Jon,
thank you for your help. responded to main thread, and just sending you
the actual output for certutil.
[root@ds01 log]# certutil -d /etc/pki/nssdb -L
Certificate Nickname Trust
Attributes
22 matches
Mail list logo
